Find the answer to your Linux question:
Results 1 to 3 of 3
Thanks for reading. I am having troubles getting vsftpd to work with ssl. Fedora 16 So far: yum install vsftpd system-config-firewall enable ftp... setsebool -P ftp_home_dir 1 Works great without ...
Enjoy an ad free experience by logging in. Not a member yet? Register.
  1. #1
    Just Joined!
    Join Date
    Feb 2011
    Posts
    2

    vsftpd & SSL Fail No Logs


    Thanks for reading.

    I am having troubles getting vsftpd to work with ssl.

    Fedora 16

    So far:

    yum install vsftpd

    system-config-firewall
    enable ftp...

    setsebool -P ftp_home_dir 1

    Works great without SSL at this point.

    openssl req -x509 -nodes -days 365 -newkey rsa:1024 -keyout #rsa_cert_file=/etc/pki/tls/certs/vsftpd.pem -out #rsa_cert_file=/etc/pki/tls/certs/vsftpd.pem

    I've run restorecon on the pem file.

    change my vsftpd.conf adding:
    rsa_cert_file=#rsa_cert_file=/etc/pki/tls/certs/vsftpd.pem
    ssl_enable=YES
    force_local_data_ssl=YES
    force_local_logins_ssl=YES

    My /var/log/messages output
    Mar 15 22:16:33 pckps systemd[1]: vsftpd.service: control process exited, code=exited status=1
    Mar 15 22:16:33 pckps systemd[1]: Unit vsftpd.service entered failed state.

    output of systemctl status vsftpd:
    vsftpd.service - Vsftpd ftp daemon
    Loaded: loaded (/lib/systemd/system/vsftpd.service; disabled)
    Active: failed since Sat, 17 Mar 2012 11:20:50 -0400; 24s ago
    Process: 5105 ExecStart=/usr/sbin/vsftpd /etc/vsftpd/vsftpd.conf (code=exited, status=1/FAILURE)
    Main PID: 5066 (code=killed, signal=TERM)
    CGroup: name=systemd:/system/vsftpd.service

    At this point I disabled selinux
    setenforce 0

    Double checked se linux with sestatus:
    SELinux status: enabled
    SELinuxfs mount: /sys/fs/selinux
    Current mode: permissive
    Mode from config file: enforcing
    Policy version: 26
    Policy from config file: targeted

    Have found a second “error” in /var/log/audit/audit.log:
    type=SERVICE_START msg=audit(1331865619.184:4133): user pid=0 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:init_t:s0 msg=': comm="vsftpd" exe="/bin/systemd" hostname=? addr=? terminal=? res=failed'

    I'm still looking up how to properly read the audit logs. I don't believe this has anything to do with the issue that I am having.

    No mater how I configure the log options in vsftpd.conf I can not get it to output to /var/log/vsftpd.log.

    Thanks for any suggestions!

  2. #2
    Just Joined!
    Join Date
    May 2012
    Posts
    9
    Please check whether file name "xferlog" exists in /var/log/ location to understand a better idea of the issue

  3. #3
    Just Joined!
    Join Date
    Feb 2011
    Posts
    2
    Thank you for your responce.

    I actually abodoned using VSFTPD for using SSH and client that supported SFTP.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •